$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d877b319-6b7e-4002-a764-eae7f98a0674.roa File: d877b319-6b7e-4002-a764-eae7f98a0674.roa (raw, json) Hash identifier: UlMw7kyu4DsyUi4LEeOJz49pbkOXnXF35Ebo9p1Q+LU= Subject key identifier: 0C:59:86:88:BD:DB:7F:81:1B:B4:DC:D2:0D:D3:E6:9F:11:9B:2F:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01DC56524BAB835550FC200731F6DF7DE30C3549 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d877b319-6b7e-4002-a764-eae7f98a0674.roa Signing time: Sat 16 May 2026 00:50:40 +0000 ROA not before: Sat 16 May 2026 00:50:40 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.240.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:dc:56:52:4b:ab:83:55:50:fc:20:07:31:f6:df:7d:e3:0c:35:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:50:40 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=154fee0a6605d71885ee20dca0c3e4be18d344759243fb7071de6cce2039d2b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ba:16:f5:d0:13:ed:06:b4:b7:88:35:8a:fe: bb:5e:3d:46:c8:69:b2:8c:e8:50:46:0f:c6:3f:46: 50:2e:4c:70:f1:da:fa:96:af:88:c3:48:16:cd:6f: e9:bc:9a:2e:21:6a:bf:c1:f8:7f:71:60:b0:38:f4: 93:5d:82:1c:c4:40:fe:94:78:54:b7:69:b3:ea:52: 2e:c3:a1:70:99:6e:60:87:ce:d4:74:cc:32:b8:2c: 43:7e:7d:6e:2b:d7:31:10:6c:48:b5:72:5d:71:49: 90:a0:9b:0e:a4:9c:9c:78:92:dd:ff:67:68:b7:22: 86:d4:7c:dd:00:ef:39:9e:75:54:99:54:72:16:f9: b0:f2:bf:98:27:9e:97:3b:b9:92:c4:4d:47:c6:97: 66:61:9d:83:cd:f7:13:ba:8f:f2:37:00:38:d5:97: d4:bf:35:34:07:84:59:77:8d:da:21:24:84:ae:28: c0:72:61:63:3e:e3:3b:1c:d2:d1:04:7a:b2:3f:56: d3:73:ea:ed:4d:85:c3:96:89:9b:68:66:63:b2:6a: e6:96:48:06:23:97:49:2c:c6:17:ec:72:d2:3b:bf: 70:d3:f0:04:5f:60:fd:f2:20:d1:bd:2e:c8:67:57: 06:95:c2:0a:68:78:c0:15:63:32:70:4b:27:9c:0a: 4c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:59:86:88:BD:DB:7F:81:1B:B4:DC:D2:0D:D3:E6:9F:11:9B:2F:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d877b319-6b7e-4002-a764-eae7f98a0674.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.240.0.0/15 Signature Algorithm: sha256WithRSAEncryption 5d:f3:13:01:4d:16:f4:b6:26:a9:83:c8:12:1f:0d:3d:82:1b: 76:92:8d:94:65:3c:b3:7b:50:a9:43:23:11:fb:e6:eb:48:44: 79:93:07:6b:91:ce:61:5b:e1:84:79:ca:fa:c2:fb:5c:2b:9c: 42:80:40:04:08:fc:4e:88:89:e4:cc:3d:8d:e7:e4:0a:55:ac: f7:1f:1a:ab:7c:5c:d6:1b:6b:4c:e3:39:d7:d3:0b:3d:9b:2f: 72:0e:59:d5:b6:af:c5:71:6f:e9:89:d1:fd:60:df:36:23:4b: 6a:5e:82:e2:23:2f:0c:03:07:5c:b2:cd:74:f8:80:d2:26:66: 02:ac:b3:9e:96:2e:b0:0c:7f:a9:c6:2c:38:55:f7:b7:82:a1: 10:e1:ef:70:43:d4:23:dc:57:c4:5f:77:3d:11:da:3a:50:71: 4e:5d:69:28:9c:a6:44:b9:4e:72:84:65:8b:7b:ac:dc:d9:83: a1:8c:1e:17:37:00:3b:a7:14:3b:8c:f5:b5:a5:e3:df:49:0d: 67:99:c7:d4:88:41:06:8d:e9:b4:4e:fb:b1:89:5e:1c:a4:2b: cc:57:b3:19:c8:3b:6b:1d:09:15:fe:11:2d:3b:e5:43:d7:ac: f8:6e:77:fd:fc:ed:42:37:67:b4:60:60:da:4c:44:df:40:3e: 4c:e8:28:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAdxWUkurg1VQ/CAHMfbffeMMNUkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDA1MDQwWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTRmZWUwYTY2MDVkNzE4ODVlZTIwZGNhMGMzZTRiZTE4 ZDM0NDc1OTI0M2ZiNzA3MWRlNmNjZTIwMzlkMmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFuhb10BPtBrS3iDWK/rtePUbIabKM6FBGD8Y/RlAuTHDx 2vqWr4jDSBbNb+m8mi4har/B+H9xYLA49JNdghzEQP6UeFS3abPqUi7DoXCZbmCH ztR0zDK4LEN+fW4r1zEQbEi1cl1xSZCgmw6knJx4kt3/Z2i3IobUfN0A7zmedVSZ VHIW+bDyv5gnnpc7uZLETUfGl2ZhnYPN9xO6j/I3ADjVl9S/NTQHhFl3jdohJISu KMByYWM+4zsc0tEEerI/VtNz6u1NhcOWiZtoZmOyauaWSAYjl0ksxhfsctI7v3DT 8ARfYP3yING9LshnVwaVwgpoeMAVYzJwSyecCkxbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDFmGiL3bf4EbtNzSDdPmnxGbL8AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4NzdiMzE5LTZiN2UtNDAwMi1hNzY0LWVhZTdmOThhMDY3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEg8DANBgkqhkiG9w0BAQsFAAOCAQEAXfMTAU0W9LYmqYPIEh8NPYIbdpKN lGU8s3tQqUMjEfvm60hEeZMHa5HOYVvhhHnK+sL7XCucQoBABAj8ToiJ5Mw9jefk ClWs9x8aq3xc1htrTOM519MLPZsvcg5Z1bavxXFv6YnR/WDfNiNLal6C4iMvDAMH XLLNdPiA0iZmAqyznpYusAx/qcYsOFX3t4KhEOHvcEPUI9xXxF93PRHaOlBxTl1p KJymRLlOcoRli3us3NmDoYweFzcAO6cUO4z1taXj30kNZ5nH1IhBBo3ptE77sYle HKQrzFezGcg7ax0JFf4RLTvlQ9es+G53/fztQjdntGBg2kxE30A+TOgoLg== -----END CERTIFICATE-----Generated at Sat Jun 13 09:30:51 2026 by rpki-client